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Abstract: 

Measuring quality characteristics of item situated plans (e.g. viability and execution) has been secured by various studies. 
Be that as it may, these concentrates on have not considered security as much as other quality properties. Additionally, 
most security studies center at the level of individual system explanations. This approach makes it hard and costly to find 
and fix vulnerabilities brought about by outline blunders. These metrics enable designers to get associate degreed fix 
security vulnerabilities at an early stage, and facilitate compare the safety of varied different styles, particularly, we tend 
to review pervious security metrics to liveknowledge Encapsulation (accessibility) and Cohesion (interactions) of a given 
object-oriented category from the purpose of read of potential info flow 
and conjointly discuss concerning their options and downsides. 

Index Terms — Channel estimation, Multiple Input Multiple Output, Least Mean Squares, Normalized LMS, Variable Step Size 
LMS, Recursive Least Squares, Least Mean-Squares Newton Algorithm, Mean square error. 


I. Introduction 

The software industry having lack of standard metrics and 
measurement. Software security is a major activity in the 
software industry. It has been reported that cost and effort 
spent on software security is very high, approximately 
between 65% to 70% of total software development and 
support efforts [1], Software reengineering, recently, have 
been advocated as a means of reducing security costs [9]. 
Slightly short of software metric has multiple definition and 
ambiguous rules. It is tough to discover vulnerabilities within 
the operational stage of code, as a result of the protection 
concern aren'taddressed or illustrious sufficiently early 
throughout code development. Accessibility (data 

encapsulation: the mechanism that binds along the code and 
therefore the information it manipulates, and keeps each safe 
from outside interference and misuse) and interaction 
(cohesion: a live of however powerfully connected or 
targeted the responsibilities of one module are) i.e. connected 
code metrics will be measured throughout the sooner phases 
of code development. To satisfy security 
demand, it's necessary to guard information from 

unauthorized 

speech act of data and alteration of data. 

Taking security early phase of a system development should 
have an impact on reducing many software vulnerabilities. 
Software vulnerability is an instance of a [fault] in the 
specification, development, or configuration of software such 
that its execution can violate an [implicit or explicit] security 
policy [7].Software security is the ability to defend attacker’s 
exploitation of software problems by building software to be 
secure throughout the whole development life cycle [4], 

Object oriented class design is becoming more famous in 


software development and object oriented design metrics is an 
important part of software development environment. This 
study is focuses on a set of object oriented security design 
metrics that can be used to measure the security and quality of 
an object oriented class design. The metric for object oriented 
class design focus on measurement that are applied to object 
oriented class and design characteristics. These measurement 
permits designers to access the software design in early phase 
of development, making changes that will reduce the 
complexity and improve the continuing capability of the 
design. The object oriented model closely represents the 
problem domain, which makes it easier to produce and 
understand design. It is also believed that object oriented 
design will encourage more re-use, i.e., new application can 
use existing modules more efficiently and effectively, thereby, 
reducing development cost and time [6].Security 
measurements have been defined to assess security at the level 
of implementation code [3]. This paper shows the study of 
different security design metrics. These Metrics permit 
designer of system to get 
and fix the protection of varied different of 
sophistication styles, we tend to conjointly mention the 
analysis of those metrics. These observations show that 
security style metrics will be used as early indicators of 
vulnerability in package, within the next session we offer a 
general background regarding metrics and package measures 
and existing package measurement metrics. 

1.1. Need of Software Metrics 

The use of software metrics is for developing quality software. 
Software metrics measures of some piece of property of 
software, or software specifications. Software metrics are 
measures of the attributes of the software products and 
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processes. Software metrics are measures that could be used to 
measure different characteristics of a software system. 

II. Related work 

Most present studies on programming security concede that 
there is no such thing as a totally secure system, be that as it 
may, there are in any case different methods for diminishing 
security dangers and vulnerabilities [8] [9], One of these is the 
requirement of security in the execution. 

A few activities have been directed to research data course 
through PC program code. This has been considered utilizing 
a few methodologies, including sort investigation [10] and 
information/control-stream examination [11], 

Another methodology is to implement security at right on time 
periods of the product improvement lifecycle, for example, at 
the outline stage. One of the soonest concentrates on around 
there was the improvement of programming security outline 
standards by Saltzer and Schroeder [12]. These standards were 
expected as direction to create secure frameworks, chiefly 
working frameworks. 

Cleric's [13] and McGraw's [14] writings distinguished a few 
comparable security plan standards. Nonetheless, these 
standards were not fit for evaluating the security levels of 
projects. Accordingly, there is a requirement for security 
measurements in view of these standards to unbiasedly 
measure the security of a given system specifically from its 
configuration curios. Characterizing programming security 
measurements is another method for decreasing project 
security dangers and vulnerabilities. An existing methodology 
which is utilized by software engineers to evaluate the level of 
security of given system code is taking into account the 
distinguishing proof of vulnerabilities [15] [9], 

A study directed by Chowdhury et al. [3] characterized a 
number of security measurements that evaluate the security of 
a given project in light of code reviews. These measurements 
require full usage of the framework to evaluate its security. 

This methodology makes it difficult to settle security mistakes 
at the outline time and is costly in terms of time and assets. 
Furthermore, measuring the security of the framework's 
engineering has been finished by Manadhata et al. [2], 

This study concentrated on the framework's 'assault surface'. 
Additionally, a study that characterized outline measurements 
which measure certain product quality properties was directed 
by Bansiya [16]. He recognized a methodology to enhance the 
Quality Model for Object-Oriented Outline (QMOOD) [5]. 

The model intends to gauge the nature of different article 
arranged configuration qualities for example; reusability, 
adaptability, and usefulness based on their pertinence to 
certain quality configuration properties (e.g. deliberation, 
union, and coupling). Despite the fact that the study secured 
most plan quality traits, it did not consider security. Since 
security is a quality prerequisite [1], building up various 
security measurements in view of the QMOOD quality 
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configuration properties is the best choice for planning 
measurements. Characterizing an arrangement of 
measurements which assesses the security of a given project in 
light of its outline antiques instead of its source code would 
diminish the expense of settling security outline vulnerabilities 
by identifying these vulnerabilities at an early stage. 

Bandar Alshammari, Colin Fidge and Diane Corney [14] 
defined a number of security metrics for object-oriented 
designs. These metrics are easy to capture and apply once a 
given class is designed and annotated using UMLsec and 
SPARK’s annotations. The metrics not only allow designers to 
define the most secure design but they can also give 
indications of where any potential vulnerability occurs. They 
differ from code level metrics as they are easier to capture and 
don’t require the software to be implemented. We have also 
shown how to directly compare the metrics results for various 
alternative designs and thus help choose the design which best 
satisfies a certain security design principle. The defined 
approach can also make it easier for systems designers to 
choose which refactoring methods to use to satisfy a certain 
security design principle. 

Software metrics can be used to find out the properties of the 
software that we are developing and predict the needed effort 
and development period. “LOC (Lines of Code)” is one of the 
most primitive and oldest metrics. In the beginning of 1990s, 
Chidamber and Kemerer proposed six new object-oriented 
metrics to overcome the limitations of the more traditional 
code-based metrics. However, as computer code engineers" 
focus has shifted to the sooner stages of the life cycle, the 
shortcomings of OO code metrics like their 
predecessors became additional apparent. Therefore, a 
comprehensive approach to developing and applying metrics 
to artifacts like styles made at the first stages of the life 
cycle is required, within the in the meantime, the Unified 
Modeling Language (UML) was adopted by the 
thing Management cluster (OMG) in 1997 ending 
the questionable “00 strategies war”, and since then has 
become the de facto specification customary graphical 
language for specifying, constructing, visualizing, and 
documenting computer code systems, business modeling 
and different non-software systems. 

One of the earliest studies in this area was the development of 
software security design principles by Saltzer and Schroeder 
[10]. These principles were intended as guidance to help 
develop secure systems, mainly operating systems. 

Bishop"s [11]. Many organizations square 
measure victimisation UML as normalla typical] language for 
his or her project artifacts and have adopted UML as their 
organization’s standard, because the quantity of UML 
models made inside a corporationinflated, a 
desire for measure their characteristics has arisen. 

Bansiya, J., and Davis, C.G. proposed a set of metrics for 
object-oriented design called “Quality Model for Object- 
Oriented Design (QMOOD)" [10, 94]. This is a hierarchical 
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model for the assessment of high level design quality 
attributes of object-oriented design which is called as 
QMOOD. This model evaluates the structural and behavioral 
design properties of classes, objects and their relationships 
using a suite of objectoriented design metrics. This 
hierarchical model relates design properties of encapsulation, 
modularity, coupling, and cohesion to high-level quality 
attributes such as flexibility, reusability and complexity. The 
relationship from design properties to quality attributes are 
weighted in accordance with their influence and importance. A 
key attribute of the model is that it can be easily modified to 
include different relationships and weights. The model is 
empirically validated on large commercial object-oriented 
systems. 

Aggarwal, K.K., et al. proposed a model for integrated 
complexity measurement for measuring the software 
complexity based on lines of code, average variable statement, 
cyclomatic complexity and degree of control nesting [3], 

Chae, H.S., et al. presented an approach for improving the 
cohesion by considering the characteristics of the dependent 
instance variables in an object-oriented program. They 
investigated the effects of dependent instance variables on 
cohesion metrics for object-oriented programs and they 
proposed an approach to identifying the dependency relations 
among instance variables [18]. 

Aggarwal, K.K., et al. proposed two design metrics for object- 
oriented software and these metrics are analytically evaluated 
against Weyuker’s properties of measures [4], 

Aggarwal, K.K., et al. conducted an investigation on 22 
metrics proposed by various researchers and applied these 
metrics on projects for empirical study [5]. 

Sarkar, S., et al. proposed a set of metrics that measure the 
quality of modularization of a non-object-oriented software 
system. They proposed design principles to capture the notion 
of modularity and they defined metrics centered on principles. 
Their metrics characterize the software from a variety of 
perspectives as structural, architectural, and notions such as 
the similarity of purpose and commonality of goals. Their 
metrics are based on information-theoretic principles and 
tested their metrics on popular open-source systems [79]. 
Aggarwal, K.K., et al. conducted effect of design metrics on 
fault proneness in object-oriented systems. They empirically 
investigated the relationship between object-oriented design 
metrics and fault-proneness of object-oriented systems [6]. 
Sarkar, S., et al. proposed 13 metrics for measuring the 
modularization of large-scale object-oriented software. Their 
13 metrics characterise the quality of modularisation with 
respect to such object-oriented intermodule dependencies [78]. 
Alghamdi, J.S. presented a scheme for measuring coupling 
between program components. His scheme makes the 
measurement of coupling easier by breaking it down into two 
major steps and provides a systematic procedure for each step 
[ 8 ]. 

Kaur, K., and Singh, H. validated component based software 
development on reuse of software components. They have 


validated object-oriented metrics to measure structural 
properties of commercial software components [52], 

Bawane, N., and Srikrishna, C.V. proposed a metric for 
software and the process of selecting the metrics that support 
the goal of measuring design and code quality [12]. 

Kaur, K., and Singh, H. conducted a study on system behavior 
for object-oriented systems using metrics. They conducted 
empirical studies using two object-oriented languages [53]. 
Object-oriented metrics can play an important role in object- 
oriented software development. The object-oriented metrics 
are important in the development of successful software 
applications [31]. 

Ma, Y.T., et al. (2010), proposed a hierarchical set of metrics 
for coupling and cohesion. They conducted empirical study on 
12 open-source object-oriented software systems for 
validating their set. Their experimental results show the 
correlations between cross-level metrics and they provided 
more effective information about fault-prone classes in 
practice [66]. 

Kumar, S.A., et al. proposed the significance of software 
metrics to quantify design and code quality and discussed on 
the needs of development and implementation of metrics [62], 
Okike, E. presented a pedagogic evaluation about the 
Chidamber Kemerer LCOM metric using field data from three 
industrial systems. They suggested that the LCOM metric 
measures class cohesiveness and appropriateness in the 
determination of properly and improperly designed classes 
[68], 

Babu, S., and Parvathi, R.M.S. proposed an approach to the 
computation of dynamic coupling measures in distributed 
object-oriented systems. The motivation of measures is to 
complement existing measures that are based on static analysis 
by actually measuring coupling at runtime in the hope of 
obtaining better decision and prediction models [9]. 

Ahmed, M., and Shoaib, M. proposed design metrics to 
measure real time environment and the aim of the set of new 
metrics is to measure the design before handing over to the 
implementation team [7]. The measurement can distinguish 
the characteristics of entity from another by analysis and 
drawing the conclusion that software metrics are used to 
measure the attributes of an entity. It is accepted that quality 
of software product is strongly dependent on the quality of its 
design [83, 88] 

Yadav, A., and Khan, R.A. proposed coupling metrics for 
complexity normalization. They proposed a method to 
improve reliability of object-oriented design by normalizing 
complexity which is closely correlated with coupling and 
coupling complexity normalization (CCN) metric is used to 
minimize complexity of object-oriented design [99]. 

Chhikara, A., and Chhillar, R.S. proposed an aspect-orientated 
object-oriented metrics. Aspect-Oriented Paradigm is the 
emerging paradigms that promise to enhance software design 
and promotes reuse. Their research studies the object-oriented 
metrics and how the introduction of aspects affects these 
metrics [22]. 
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Chhikara, A., et al. conducted the impact of different types of 
inheritance on the object-oriented software. Their research 
paper focused on effects of inheritance on object-oriented 
environment [23], 

Gandhi, P., and Bhatia, P.K. proposed two metrics called 
Message Received Coupling (MRC) and Degree of Coupling 
(DC) metrics for the automatic detection of design problems 
along with an algorithm to apply these metrics to redesign an 
object oriented source code. They designed a Method Calling 
Graph for calculating the value of proposed metrics [38]. 
Sharma, R., and Chhillar, R.S. discussed the merits and 
demerits of various metrics. They proposed a new system for 
measuring the goodness of implementation phase. The concept 
of object-oriented metrics has also been explored [84], 

Sharma, A.H., et al. presented a review of the quality metrics 
suites of CK, MOOD, and LK metrics. They select some 
metrics and discard other metrics based on the definition and 
capability of the metrics [86], 

Reda, S., et al. presented a methodology for software design 
quality assessment. Their methodology helps the designer to 
measure and assess the changes in design due to design 
enhancements. They illustrated the methodology using 
practical software design examples and analyzed its utility in 
industrial projects [75]. 

Kumar, R., and Gupta, D., proposed heuristics for object- 
oriented metrics. They proposed heuristics for CK, MOOD, 
and LK object-oriented metrics [60]. 

Krishnaiah, R.V., and Prasad, B.S. (2012), studied a suite of 
metrics for object-oriented design. The metric values have 
been calculated using a semi-automated tool. They analyzed 
the resulting values of CK and MOOD metrics and provided 
significant insight about the object oriented characteristics of 
the projects [59]. 

Dubey, S.K., and Rana, A. proposed a fuzzy model to 
quantify maintainability of object-oriented software system 
using Chidamber and Kemerer object-oriented metrics. The 
model takes object-oriented projects and evaluates its 
maintainability and fuzzy model is validated by using 
analytical hierarchy processing technique [32], 

Dubey, S.K., et al. (2012), reviewed object-oriented metrics 
and they analyzed the difference between the object-oriented 
metrics and they studied object-oriented metrics which assures 
to reduce cost and the maintenance effort by serving as early 
predictors to estimate software faults [33]. 

Dash, Y, et al. (2012), studied artificial neural network and 
they explored the application of evaluate maintainability of the 
object-oriented software and they studied maintenance effort 
[30], 

Chawla, M.K., and Chhabra, I. (2012), has conducted mapping 
of program characteristics into five structural complexity 
metrics and behavior of an information system. They applied 
and obtained results from three java based sorting programs 
[ 21 ]. 

Jyothi, V.E., et al. (2012), have studied agile software 
development refactoring to improve software quality and 


improve software internal structure without changing its 
behavior. They proposed an object-oriented software metric 
tool called “Metric Analyser” and the tool was tested on 
different codebases [47]. 

Gupta, A., et al. discussed the most commonly used metrics 
suite of CK, MOOD and LI on the basis of characteristic they 
measure. Further, they identified strengths and weaknesses of 
these metrics and concluded that none of the metrics suite is 
foolproof. Moreover, there is no single metric that can 
measure all the aspects of an object-oriented System [41]. 
Sharma, A.K., et al. reviewed the metrics of CK, MOOD, and 
LK metrics. They analyzed the metrics and recommended that 
are useful in evaluation of software quality [85]. 

Patidar, K., et al. (2013), presented a measurement of the 
coupling and cohesion between objects that measures the 
association between numbers of classes, check the direct 
dependencies, indirect dependencies, I/O dependencies, 
number of out and in metrics in object-oriented programming 

[71]. 

Michura, J., et al. proposed a set of metrics to quantify and 
measure the attributes. They proposed complexity metrics 
which are used to determine the difficulty in implementing 
changes through the measurement of method complexity, 
method diversity, and complexity density [67], 

Lamrani, M., et al. (2013), presented an approach to express 
software design metrics based on a formal definition of the 
UML Meta model. They applied their approach to the well 
known suite of metrics called the CK metrics and MOOD 
metrics [63], 

Chawla, S. (2013), has reviewed the set of MOOD and 
QMOOD metrics sets and they discussed the usefulness of 
each metrics [20], 

Kaur, A., and Kaur, P.J. (2013), studied class cohesion metrics 
measured during the design phase to predict software quality. 
They used cohesion to evaluate class based on the information 
that is available during design phases [50], 

In this paper we characterize several security outline 
measurements. They can be utilized to think about various 
plans for the same program and recognize the best outline for 
a certain security plan guideline. They do this by recognizing 
potential data stream taking into account examining the 
programming quality properties characterized in the QMOOD. 

III. CONCLUSION 

The design metrics play an important role in helping designer 
and developers to understand design aspects of software and it 
improves the software quality and productivity. In general, 
object-oriented metrics serve many purposes for software 
engineers and software metrics are used by the project 
manager, developer, and tester in assuring the quality of the 
software products. In today’s software development 
environment, object-oriented design and development is 
important and there is strong relationship between the object- 
oriented metrics and the testability efforts in object-oriented 
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system. This paper has analyzed the most referred object- 
oriented design metrics proposed by Chidamber and Kemerer, 
MOOD metrics set, and Lorenz and Kidd metrics. This paper 
also discussed the recently proposed “Comprehensive 
Metrics” suite for object-oriented design quality assessment 
and the review of object-oriented metrics proposed by various 
researchers and their significances are also outlined. The use 
of existing metrics and development of new metrics will be 
important factors in future software engineering process and 
product development [37, 46, 93, and 94]. In future, research 
work will be based on using software metrics in software 
development for the improvement of the time schedule, cost 
estimates and quality and can be improved through software 
metrics. 
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